Silla Brust reports: The U.S. Commodity Futures Trading Commission suffered a data breach in May, putting at risk Social Security numbers and personal information of employees of the country’s top derivatives regulator. A CFTC employee received a “phishing” e-mail on May 21 and input information to a fraudulent website, according to a copy of an…
Category: Malware
Intuit Financial Services warns customers that email sent via VerticalResponse contained malicious code
Malware-laden email from Intuit Financial Services has been reported, but how did this happen? The following was submitted to DataBreaches.net by a reader: From: Intuit Financial Services Sent: Thursday, June 14, 2012 11:29 PM To: IFS Clients Subject: Innovation Conference email issue – June 14 Earlier today you received an email from [email protected] with the subject…
Flame: Massive cyber-attack discovered, researchers say
Dave Lee reports: A complex targeted cyber-attack that collected private data from countries such as Israel and Iran has been uncovered, researchers have said. Russian security firm Kaspersky Labs told the BBC they believed the malware, known as Flame, had been operating since August 2010. The company said it believed the attack was state-sponsored, but…
Plaxo online address book service warns of security breach
Online address book service Plaxo has confirmed that an unknown malicious third-party gained access to the company’s API connection to Google’s address book and calendar. As a result of the security breach, Google took precautionary measures and temporarily disabled the connection, and sent Google account holders a “Suspicious sign in prevented” email advising them that…
UK: York computer hacker, Edward Pearson, jailed for identity fraud
From York Press, an update to a case mentioned previously on this blog: A York computer hacker has been jailed for an ID fraud which affected thousands of people and could have netted him £834,000. Southwark Crown Court was told how Edward Pearson, 23, used internet viruses to gain more than eight million personal details…
Dutch Police Arrest 17-year-old Suspected of Breaching Hundreds of KPN Servers
Loek Essers reports: The Dutch High Tech Crime Team has arrested a 17-year-old suspected of compromising customer account data on hundreds of servers belonging to telecommunications operator KPN….. The arrested teenager called himself “xS”, “Yoshioka” and “Yui” online, and is suspected of breaching the security of hundreds of KPN servers last January, compromising user data…